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Fabio Maino, Claudio DeSanti 

Cross-Reference to Related Application 

This application is related to United States Patent Application Number 
10/034,367, entitled "Methods and Apparatus for Security over Fibre Channel," 
which is hereby incorporated by reference in its entirety for all purposes. 

Background of the Invention 

1. Field of the Invention. 

The present invention relates to Fibre Channel security. More specifically, the 
present invention relates to methods and apparatus for providing confidentiality for 
Fibre Channel control messages encapsulated within Common Transport Information 
Units. 

2. Description of Related Art 

Very limited security exists in Fibre Channel networks. One form of security 
for Fibre Channel networks is physical security. All Fibre Channel network entities, 
such as switches, disks, tape libraries, disk arrays, and servers can be located in a 
secure and trusted environment. Access can be limited and strict controls can be 
maintained over the Fibre Channel fabric. However, it is not always feasible to locate 
every Fibre Channel network entity in a secured environment. 

Some security schemes have focused more on secure links. When a new Fibre 
Channel network entity is introduced into a Fibre Channel fabric, directly neighboring 
nodes check the newly introduced entity to determine whether or not the newly 
introduced node is authorized to connect to the fabric. However, the checks are made 
only once by some directly neighboring nodes. Other more distant nodes are unable 
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to perform any checking. Furthermore, once the link is established, no further 
security is provided. The fabric is deemed trusted even though the Fibre Channel 
fabric is still vulnerable to certain attacks such as spoofing, hijacking, or 
impersonation. 

5 

It is therefore desirable to provide methods and apparatus for improving 
security in a Fibre Channel network and in particular for improving authentication, 
confidentiality, message integrity protection, and anti-replay protection in a Fibre 
Channel fabric with respect to some or all of the limitations noted above. 

10 

The Fibre Channel Generic Services 3 ("FC-GS-3") Standard (formerly ANSI 
NCITS 348-2001) defines CT_Authentication, a security transform for Fibre Channel 
Common Transport Information Units, that may be used to provide anti-replay and 
integrity protection to control traffic. However, no provision is currently made to 
15 provide confidentiality to control traffic, even though such confidentiality would be 
highly desirable. Without confidentiality, Common Transport may not be used to 
transport sensitive data such as passwords or secrets that are a very valuable subset of 
control information. 
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Summary of the Invention 



Methods and apparatus are provided for improving confidentiality of control 
traffic in a Fibre Channel network. Messages passed between Fibre Channel network 
5 entities can be encrypted using information provided during the authentication 
sequence. This methods and apparatus can be combined with already existing 
authentication services for Fibre Channel Common Transport providing a complete 
set of security services such as per-message authentication, confidentiality, integrity 
protection, and anti-replay protection. 

10 

According to various embodiments, a method for processing Common 
Transport Information Units in a Fibre Channel network having a first network entity 
and a second network entity is provided. A CT_IXJ is received at a first network 
entity from the second network entity in a Fibre Channel network. A security control 
15 indicator in the CT_IU from the second network entity is identified. A security 
association identifier associated with the Common Transport Information Unit and 
corresponding to an entry in a security database is determined. A portion of the 
CT IU is decrypted by using algorithm information contained in the entry in the 
security database. 

20 

In still other embodiments, a method for transmitting encrypted Common 
Transport Information Unit in a Fibre Channel network having a first network entity 
and a second network entity is provided. A CT_IU having a source corresponding to 
the first network entity and a destination corresponding to the second network entity 
25 is identified. It is determined if the CT EJ corresponds to the selectors of an entry in 
a security database. A portion of the CT_IU is encrypted using key and algorithm 
information associated with the entry in the security database. The Common 
Transport Information Unit is transmitted to the second network entity. 

30 
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These and other features and advantages of the present invention will be 
presented in more detail in the following specification of the invention and the 
accompanying figures, which illustrate by way of example the principles of the 
invention. 
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Brief Description of the Drawings 



The invention may best be understood by reference to the following 
description taken in conjunction with the accompanying drawings, which are 
illustrative of specific embodiments of the present invention. 

Figure 1 is a diagrammatic representation of a network that can use the 
techniques of the present invention. 

Figure 2 is a diagrammatic representation of a security database. 

Figure 3 is a diagrammatic representation of a secured Common Transport 
Information Unit transmitted over Fibre Channel. 

Figure 4 is a process flow diagram showing the generation of a secured 
Common Transport Information Unit. 

Figure 5 is a process flow diagram showing the receipt and processing of a 
secured Common Transport Information Unit. 

Figure 6 is a network device that may be configured to implement some 
aspects of the present invention. 
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Detailed Description of Specific Embodiments 



METHODS AND APPARATUS FOR 
CONFIDENTIALITY PROTECTION FOR FIBRE CHANNEL 
5 COMMON TRANSPORT 

Fabio Maino, Claudio DeSanti 

The present invention relates to security in a Fibre Channel fabric. More 
10 specifically, the present invention relates to methods and apparatus for providing 
confidentiality for Fibre Channel control messages encapsulated within Common 
Transport Information Units. 

Reference will now be made in detail to some specific embodiments of the 
15 invention including the best modes contemplated by the inventors for carrying out the 
invention. Examples of these specific embodiments are illustrated in the 
accompanying drawings. While the invention is described in conjunction with these 
specific embodiments, it will be understood that it is not intended to limit the 
invention to the described embodiments. On the contrary, it is intended to cover 
20 alternatives, modifications, and equivalents as may be included within the spirit and 
scope of the invention as defined by the appended claims. 

For example, the techniques of the present invention will be described in the 
context of Fibre Channel Common Transport used in a storage area network. 

25 However, it should be noted that the techniques of the present invention can be 
applied to a variety of different protocols and networks. In the following description, 
numerous specific details are set forth in order to provide a thorough understanding of 
the present invention. The present invention may be practiced without some or all of 
these specific details. In other instances, well known process operations have not 

30 been described in detail in order not to unnecessarily obscure the present invention. 

Methods and apparatus of the present invention provide for security in Fibre 
Channel networks. The techniques of the present invention cover message-based 
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security. Mechanisms are provided for encryption of Common Transport Information 
Units passed between Fibre Channel network entities. 

Maino, Di Benedetto and DeSanti have submitted United States Patent 
5 Application Number 10/034,367 (attorney docket number AND1P004) for "Methods 
and Apparatus for Security over Fibre Channel" that improves authentication, 
confidentiality, message integrity protection, and anti-reply protection in a Fibre 
Channel fabric. The method improves security of Fibre Channel frames at the FC-2 
layer, but sometimes is necessary to secure only a subset of the entire Fibre Channel 
10 traffic, such as the control traffic transported as Common Transport Information Units, 
also called CT_IUs. 

However, securing control traffic encapsulated in CT_IUs at the frame level 
may require keeping some state information associated with the frames belonging to the 
15 same CT_IU, and this complicates implementations. Providing security directly to a 
Common Transport Information Unit according to methods of the present invention 
does not require keeping frame by frame state information and is therefore 
advantageous. 

20 Figure 1 is a diagrammatic representation of a network that can use the 

techniques of the present invention. A Fibre Channel fabric 131 can include a 
number of network entities such as switches 111 and 113 as well as a generic service 
provider 115, which may be yet another switch. The switches can be used to 
interconnect nodes 101, 103, 105, and 107. Nodes 101, 103, 105, and 107 can be 

25 entities such as servers, tape libraries, disk arrays, and/or just a bunch of disks 
(JBOD). The Fibre Channel architecture shown in Figure 1 is a switch-based 
architecture. However, it should be noted that Fibre Channel networks can be 
implemented using a variety of different topologies such as arbitrated loop and point- 
to-point connections. 

30 

The Fibre Channel network 131 can be connected to a conventional IP 
network 141 through a device such as a Fibre Channel to EP gateway 121. Various 
authentication and encryption schemes exist in conventional TCP/IP networks. 
However, security in Fibre Channel networks has been limited primarily because 
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physical security could be typically provided for Fibre Channel networks. In 
conventional Fibre Channel networks, all of the different network entities such as the 
arrays of disks, tape libraries, servers, switches, and generic service providers, etc., 
could be located in a controlled and trusted environment such as a secure office space 
5 or server room. However, techniques of the present invention recognize that physical 
security cannot always be provided. 

Conventional Fibre Channel security mechanisms are limited in both 
capabilities and scope. One Fibre Channel authentication mechanism provides 
limited link based security. When a new network entity is introduced into the Fibre 
Channel network, immediate neighbors authenticate the new network entity and 
secure the link. After the link is secured, the network is considered trusted and no 
other security mechanisms are necessary. However, link based security does not 
prevent certain types of attacks. In one example, a network intruder can "spoof the 
confidential information sent over the network, capturing sensitive information that 
might be further used to compromise the network. Without per-message 
confidentiality, an attacker between two FC entities can simply forward the 
Information Units exchanged by the two entities, and can observe all the traffic 
directed toward the attacked entity. When per-message confidentiality is in place, the 
messages captured by the attacker will be intelligible only to the receiver that has the 
appropriate cryptographic key to decrypt the protected Information Unit. 

Existing Fibre Channel security mechanisms provide for integrity verification 
of Common Transport Information Units. No provision is currently made to provide 
25 confidentiality to CTJUs. Consequently, methods and apparatus are provided for the 
implementation of efficient message-based encryption schemes for Common 
Transport Information Units. 

Common Transport Information Units are used to access and provide Generic 
30 Services to Fibre Channel entities. As defined by FC-GS-3, some parameters carried 
inside the CT_IU itself specify the service to be accessed. In particular, the GS_Type 
parameter determines the Generic Service of interest, while the GS_Subtype 
parameter selects a specific sub-server under the specified Service. For example, a 
CTJU carrying GS_Type equal to 'FCh' and GS_Subtype equal to '02h' is meant to 
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access the Name Server sub-server (GS_Subtype = < 02h') under the Directory 
Services (GS_Type = TCh'). Instead a CT_rU carrying GSJType equal to TAh' and 
GS_Subtype equal to c 03h' is meant to access the Fabric Zone Server sub-server 
(GS_Subtype = c 03h') under the Management Services (GSJType = TAh'). 

5 

An existing authentication and key exchange sequence provides two Fibre 
Channel entities with a common key that may be leveraged to provide per-message 
security. Using that common key, each Fibre Channel message exchanged between 
two authenticated entities may be cryptographically transformed in a such a way that 
10 the receiver can verify several characteristics of the message such as the following: 
the message originated from the sender, the message has not been tampered with after 
transmission, and/or the message is not decipherable by one without the common key. 

Each class of traffic exchanged between the two authenticated entities can be 
15 provided with different security services. Some security services for control and 
traffic messages include authentication, protection against tampering, and encryption. 
The relationship between two Fibre Channel ports that affords security services to 
traffic transmitted between the two ports is referred to herein as a security association. 
Examples of security association parameters are a security association identifier, the 
20 source address, the destination address, a sequence number, key information, and 
algorithm information. Outgoing traffic is transformed according to the parameters of 
the outgoing security association if the traffic matches the selectors of that security 
association. Examples of security association selectors are source identifiers, 
destination identifiers, and class of traffic. A security database can be used to 
25 determine whether Common Transport Information Units should be encrypted and 
authenticated based on parameters of the CTIU itself, such as source and destination 
addresses and GSJType and GS_Subtype parameters, identifying the traffic class. 
The security can be continuous and uninterrupted and can apply to any type of data 
encapsulated within CT_IUs exchanged between the two network entities. 

30 

Figure 2 is a diagrammatic representation of a security database such as a 
security association database. In one embodiment, the first three columns of the 
database contain the security association selectors that determine which Common 
Transport Information Units will be secured according to the parameters specified in 
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the security association. Selectors can be the destination address 203, and the class of 
traffic expressed as GS_Type 209 and GS_SubType 21 1. A security association 
database may contain an index such as a security association identifier SAID 201 that 
can be used to identify an entry in a security database. The security association 
5 identifier (SAID) column 201 gives information for determining whether the 
Common Transport Information Unit should be decrypted and the authentication 
verified during receipt of the CT_IU. The security database can also contain key 
information 205. Key information 205 can include session keys as well as 
information for encrypting, decrypting, or authenticating a message. A security 
10 database can also contain information relating to the algorithm used for encryption or 
authentication 207. Algorithms commonly used for encryption include 3DES/DES 
and AES while algorithms commonly used for authentication include MD5 and 
SHA1. 

15 Figure 3 is a diagrammatic representation of a secured Common Transport 

Information Unit that can be transmitted between network entities in a Fibre Channel 
fabric. Each CT_IU contains a Basic CT IU preamble as defined in FC-GS-3. A flag 
in the Basic CT_IU preamble indicates if the Extended CT_IU preamble is also part 
of the Information Unit. The Extended CTIU preamble allows to secure a Common 

20 Transport Information Unit, by providing integrity services. According to various 
embodiments of the present invention, a Common Transport Information Unit may be 
secured with confidentiality services by encrypting a portion 319 of the CT_IU in 
conjunction with the Extended CT_IU preamble. 

25 The Extended CTIU preamble 323 may be also called security header. The 

security header 323 can include a security association ID 303 for identifying an entry 
in a security database. The security header 323 can also include a time stamp 305 for 
prevention of replay attacks. For secured Common Transport Information Units, 
CTIU payload data 309, and payload padding 311 can be encrypted with the 

30 algorithms and key as indicated in the security database. As will be appreciated by 
one of skill in the art, padding provides for block alignment in encryption and 
authentication. Padding 311 can include a padding length 315 to indicate the amount 
to adjust after decryption. 
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The secured Common Transport Information Unit can also include 
authentication data 321, computed as specified by FC-GS-3 or by other methods. The 
portion encrypted can vary. In one example, only payload data is encrypted. 

5 Figure 4 is a process flow diagram showing the generation of a secured 

Common Transport Information Unit such as the one shown in Figure 3. At 401, a 
CTIU is identified. Identifying a CT_IU may entail locating an Information Unit 
queued for transmission. At 403, a security database is checked for a CTJrtJ that 
matches one of the selectors in the security association database. An entry may 

10 correspond to the identified CT_IU if the destination identifier of the Information 
Unit is contained in an entry in the security database. In another example, destination 
identifier, GS_Type and GS_Subtype can be compared with entries in a security 
database. If the CT_IU does not correspond with an entry in the security database, 
the Information Unit is transmitted at 417 without securing it. That is, a portion of 

15 the CT_IU is not encrypted and a portion of the Information Unit may not be hashed 
to allow for authentication. If the CT_KJ does correspond to an entry in the database, 
the Extended CT_IU preamble shown in Figure 3, with parameter values derived 
from the selected security association, is added to the Information Unit at 407, and the 
flag indicating its present is set in the Basic CT IU preamble. The Extended CT_IU 

20 preamble can include the security association identifier, a time stamp, and 
authentication hash block data. 

To allow for encryption and authentication at 41 1, the payload can be padded. 
At 413, a portion of the Common Transport Information Unit is encrypted using key 

25 information and algorithm information. The CT_IU may be encrypted using a 
session key agreed upon during an authentication and key exchange sequence 
between the node and the destination. The algorithm may also been agreed upon 
during the authentication and key exchange sequence. Algorithms typically used for 
encryption include DES/3DES and AES. At 415, authentication hash block data for 

30 inclusion in the Extended CT_RJ preamble is calculated using key information, 
algorithm information, and a portion of the Information Unit resulting after 
modification in 413. 
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It should be noted that techniques of the present invention support both 
encryption and authentication for a subset of Fibre Channel Information Units, termed 
Common Transport Information Units. The standard FC-GS-3, however, does not 
provide encryption or privacy protection. 

5 

Figure 5 is a process flow diagram showing a network entity in a Fibre 
Channel fabric receiving a Common Transport Information Unit. At 501, the CT_1U 
is received. At 503, it is determined if the Information Unit is secured. Any indicator 
showing that the CTIU is secured is referred to herein as a security control indicator. 

10 It should also be noted that, in certain embodiments, this is the same security control 
indicator used to determine if the Information Unit has an Extended CT_IU preamble. 
In other embodiments, a vendor specific indicator may be used. A CT_IU that 
supports encryption and authentication is herein referred to as a secured Common 
Transport Information Unit. A CT_IU that supports only authentication is herein 

15 referred to as an authentication secured Common Transport Information Unit. A 
CTJU that supports only encryption is herein referred to as an encryption secured 
Common Transport Information Unit. 

If the CT_IU is not secured, processing proceeds using conventional Fibre 
20 Channel rules. If the CT IU is secured, an identifier such as a security association 
identifier is referenced against a security database such as a security association 
database at 505. Key information and algorithm information are extracted from the 
entry containing the identifier or security association identifier associated with the 
received Common Transport Information Unit. If the CT_KJ is authentication 
25 secured, processing proceeds as a conventional CT_Authentication protocol: the 

authentication data is computed at 507 using key information, algorithm information, 
and encrypted data as noted in the security database. The authentication data 
computed is then compared with the authentication hash block data contained in the 
CT_IU. If the authentication hash block data matches, the identity of the sender is 
30 verified. Otherwise the Common Transport Information Unit is not authenticated and 
discarded. If the CT_IU is not authentication secured, the authentication processing 
described above is skipped. 
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After authentication, at 511, the encrypted portion of the Common Transport 
Information Unit can then be decrypted. Key information and encryption algorithm 
information are extracted from the entry containing the security association identifier 
associated with the received CT_IU, and the encrypted payload is decrypted. The 
5 padding included in the payload is removed, and the CT_IU is then processed using 
conventional Fibre Channel rules. 

Fig. 6 illustrates an example of a network device that may be configured to 
implement some methods of the present invention. Network device 660 includes a 

10 master central processing unit (CPU) 662, interfaces 668, and a bus 667 (e.g., a PCI 
bus). Generally, interfaces 668 include ports 669 appropriate for communication with 
the appropriate media. In some embodiments, one or more of interfaces 668 includes 
at least one independent processor 674 and, in some instances, volatile RAM. 
Independent processors 674 may be, for example ASICs or any other appropriate 

15 processors. According to some such embodiments, these independent processors 674 
perform at least some of the functions of the logic described herein. In some 
embodiments, one or more of interfaces 668 control such communications-intensive 
tasks as media control and management. By providing separate processors for the 
communications-intensive tasks, interfaces 668 allow the master microprocessor 662 

20 efficiently to perform other functions such as routing computations, network 
diagnostics, security functions, etc. 

The interfaces 668 are typically provided as interface cards (sometimes 
referred to as "linecards"). Generally, interfaces 668 control the sending and 

25 receiving of data packets over the network and sometimes support other peripherals 
used with the network device 660. Among the interfaces that may be provided are FC 
interfaces, Ethernet interfaces, frame relay interfaces, cable interfaces, DSL 
interfaces, token ring interfaces, and the like. In addition, various very high-speed 
interfaces may be provided, such as fast Ethernet interfaces, Gigabit Ethernet 

30 interfaces, ATM interfaces, HSSI interfaces, POS interfaces, FDDI interfaces, ASI 
interfaces, DHEI interfaces and the like. 

When acting under the control of appropriate software or firmware, in some 
implementations of the invention CPU 662 may be responsible for implementing 
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specific functions associated with the functions of a desired network device. 
According to some embodiments, CPU 662 accomplishes all these functions under 
the control of software including an operating system (e.g., Cisco SANOS, a 
proprietary operating system developed by Cisco Systems, Inc., etc.) and any 
5 appropriate applications software. 

CPU 662 may include one or more processors 663 such as a processor from 
the Motorola family of microprocessors or the MEPS family of microprocessors. In 
an alternative embodiment, processor 663 is specially designed hardware for 
10 controlling the operations of network device 660. In a specific embodiment, a 
memory 661 (such as non-volatile RAM and/or ROM) also forms part of CPU 662. 
However, there are many different ways in which memory could be coupled to the 
system. Memory block 661 may be used for a variety of purposes such as, for 
example, caching and/or storing data, programming instructions, etc. 

15 

Regardless of network device's configuration, it may employ one or more 
memories or memory modules (such as, for example, memory block 665) configured 
to store data, program instructions for the general-purpose network operations and/or 
other information relating to the functionality of the techniques described herein. The 
20 program instructions may control the operation of an operating system and/or one or 
more applications, for example. 

Because such information and program instructions may be employed to 
implement the systems/methods described herein, the present invention relates to 

25 machine-readable media that include program instructions, state information, etc. for 
performing various operations described herein. Examples of machine-readable 
media include, but are not limited to, magnetic media such as hard disks, floppy 
disks, and magnetic tape; optical media such as CD-ROM disks; magneto-optical 
media; and hardware devices that are specially configured to store and perform 

30 program instructions, such as read-only memory devices (ROM) and random access 
memory (RAM). The invention may also be embodied in a carrier wave traveling 
over an appropriate medium such as airwaves, optical lines, electric lines, etc. 
Examples of program instructions include both machine code, such as produced by a 
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compiler, and files containing higher level code that may be executed by the 
computer using an interpreter. 

Although the system shown in Fig. 6 illustrates one specific network device of 
5 the present invention, it is by no means the only network device architecture on which 
the present invention can be implemented. For example, an architecture having a 
single processor that handles communications as well as routing computations, etc. is 
often used. Further, other types of interfaces and media could also be used with the 
network device. The communication path between interfaces/linecards may be bus 
10 based (as shown in Fig. 6) or switch fabric based (such as a cross-bar). 

The above-described devices and materials will be familiar to those of skill in 
the computer hardware and software arts. Although many of the components and 
processes are described above in the singular for convenience, it will be appreciated 
15 by one of skill in the art that multiple components and repeated processes can also be 
used to practice the techniques of the present invention. 

While the invention has been particularly shown and described with reference 
to specific embodiments thereof, it will be understood by those skilled in the art that 

20 changes in the form and details of the disclosed embodiments may be made without 
departing from the spirit or scope of the invention. For example, embodiments of the 
present invention may be employed with a variety of architectures. In one example 
confidentiality protection could be extended to the requesting N_Port name field of 
the extended CT_IU preamble providing anonymity of the requestor. It is therefore 

25 intended that the invention be interpreted to include all variations and equivalents that 
fall within the true spirit and scope of the present invention. 
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